UNPKG

@qelos/auth

Version:

Express Passport authentication service

96 lines (88 loc) 3.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
import { getUser, getUserMetadata, updateUser } from '../services/users' import { Response } from 'express' import { AuthRequest } from '../../types' import { getWorkspaceForUser } from '../services/workspaces'; async function getImpersonate(req: AuthRequest, res: Response) { const userId = req.headers['x-impersonate-user'] as string; const workspaceId = req.headers['x-impersonate-workspace'] as string; const [user, workspace] = await Promise.all([ getUser({ username: req.headers['x-impersonate-user'] as string, tenant: req.userPayload.tenant }).catch(), workspaceId ? getWorkspaceForUser(req.headers.tenant, userId, workspaceId).catch() : Promise.resolve() ]) if (!user) { return res.status(403).json({ message: 'user not exist' }).end() } if (workspaceId && !workspace) { return res.status(403).json({ message: 'workspace not exist' }).end() } const firstName = user.firstName; const lastName = user.lastName; const fullName = user.fullName || `${firstName} ${lastName}`; res.status(200).json({ _id: user._id, username: user.username, email: user.email, name: fullName, firstName, lastName, fullName, roles: user.roles, profileImage: user.profileImage, metadata: user.metadata, workspace }).end(); } export async function getMe(req: AuthRequest, res: Response) { if (req.userPayload.isPrivileged && req.headers['x-impersonate-user']) { return getImpersonate(req, res) } let metadata = {}; try { metadata = await getUserMetadata(req.userPayload.sub, req.headers.tenant); } catch { // } const firstName = req.userPayload.firstName; const lastName = req.userPayload.lastName; const fullName = req.userPayload.fullName || req.userPayload.name || `${firstName} ${lastName}`; res.status(200).json({ _id: req.userPayload.sub, username: req.userPayload.username, email: req.userPayload.email, name: fullName, firstName, lastName, fullName, profileImage: req.userPayload.profileImage, roles: req.userPayload.roles, metadata, workspace: req.activeWorkspace }).end(); } export async function setMe(req: AuthRequest, res: Response) { const { username, password, name, fullName, firstName, lastName, birthDate, profileImage, metadata } = req.body || {} try { await updateUser( { _id: req.userPayload.sub, tenant: req.userPayload.tenant } as any, { password, fullName: fullName || name, firstName, lastName, birthDate, profileImage, metadata }, req.authConfig ) res.status(200).json({ _id: req.userPayload.sub, username: username || req.userPayload.username, email: req.userPayload.email, phone: req.userPayload.phone, name: name || req.userPayload.name, fullName: fullName || req.userPayload.fullName, firstName: firstName || req.userPayload.firstName, lastName: lastName || req.userPayload.lastName, birthDate: birthDate || req.userPayload.birthDate, roles: req.userPayload.roles, profileImage: profileImage || req.userPayload.profileImage, metadata, workspace: req.activeWorkspace }).end() } catch (e) { res.status(500).json({ message: 'failed to update your user information' }).end() } }